sea.js

/* global buffer */
/*eslint max-len: ["error", 95, { "ignoreComments": true }]*/
/*eslint semi: ["error", "always", { "omitLastInOneLineBlock": true}]*/
/*eslint object-curly-spacing: ["error", "never"]*/
/*eslint node/no-deprecated-api: [error, {ignoreModuleItems: ["new buffer.Buffer()"]}] */

;(function(){ // eslint-disable-line no-extra-semi
  /*
    Security, Encryption, and Authorization: SEA.js
  */

  // NECESSARY PRE-REQUISITE: http://gun.js.org/explainers/data/security.html

  /* THIS IS AN EARLY ALPHA!!! */

  var Gun = (typeof window !== 'undefined' ? window : global).Gun || require('./gun');

  if(typeof buffer !== 'undefined'){
    var Buffer = buffer.Buffer;
  }
  if(typeof Buffer === 'undefined'){
    var Buffer = require('buffer').Buffer;  //eslint-disable-line no-redeclare
  }

  var subtle, subtleossl, TextEncoder, TextDecoder, getRandomBytes;
  var sessionStorage, localStorage, indexedDB;

  if(typeof window !== 'undefined'){
    if(typeof window.SparkMD5 !== 'undefined'){
      var SparkMD5 = window.SparkMD5;
    }
    var wc = window.crypto || window.msCrypto;  // STD or M$
    subtle = wc.subtle || wc.webkitSubtle;      // STD or iSafari
    getRandomBytes = function(len){ return wc.getRandomValues(new Buffer(len)) };
    TextEncoder = window.TextEncoder;
    TextDecoder = window.TextDecoder;
    sessionStorage = window.sessionStorage;
    localStorage = window.localStorage;
    indexedDB = window.indexedDB || window.mozIndexedDB || window.webkitIndexedDB
    || window.msIndexedDB || window.shimIndexedDB;
  } else {
    var crypto = require('crypto');
    var WebCrypto = require('node-webcrypto-ossl');
    var webcrypto = new WebCrypto({directory: 'key_storage'});
    subtleossl = webcrypto.subtle;
    subtle = require('@trust/webcrypto').subtle;  // All but ECDH
    getRandomBytes = function(len){ return crypto.randomBytes(len) };
    TextEncoder = require('text-encoding').TextEncoder;
    TextDecoder = require('text-encoding').TextDecoder;
    // Let's have Storage for NodeJS / testing
    sessionStorage = new require('node-localstorage').LocalStorage('.sessionStorage');
    localStorage = new require('node-localstorage').LocalStorage('.localStorage');
    indexedDB = require("fake-indexeddb");
    if(typeof global !== 'undefined'){
      global.sessionStorage = sessionStorage;
      global.localStorage = localStorage;
    }
  }

  if(typeof SparkMD5 === 'undefined'){
    var SparkMD5 = require('spark-md5');  //eslint-disable-line no-redeclare
  }

  // Encryption parameters - TODO: maybe to be changed via init?
  var pbkdf2 = {
    hash: 'SHA-256',
    iter: 50000,
    ks: 64
  };

  var ecdsasignprops = {name: 'ECDSA', hash: {name: 'SHA-256'}};
  var ecdsakeyprops = {name: 'ECDSA', namedCurve: 'P-256'};
  var ecdhkeyprops = {name: 'ECDH', namedCurve: 'P-256'};

  var _initial_authsettings = {
    validity: 12 * 60 * 60, // internally in seconds : 12 hours
    hook: function(props){ return props } // { iat, exp, alias, remember }
    // or return new Promise(function(resolve, reject){(resolve(props))})
  };
  // These are used to persist user's authentication "session"
  var authsettings = {
    validity: _initial_authsettings.validity,
    hook: _initial_authsettings.hook
  };
  // This creates Web Cryptography API compliant JWK for sign/verify purposes
  function keystoecdsajwk(pub,priv){
    var pubkey = (new Buffer(pub, 'base64')).toString('utf8').split(':');
    var jwk = priv ? {d: priv, key_ops: ['sign']} : {key_ops: ['verify']};
    return Object.assign(jwk, {
      kty: 'EC',
      crv: 'P-256',
      x: pubkey[0],
      y: pubkey[1],
      ext: false
    });
  }

  // let's extend the gun chain with a `user` function.
  // only one user can be logged in at a time, per gun instance.
  Gun.chain.user = function(){
    var root = this.back(-1); // always reference the root gun instance.
    var user = root._.user || (root._.user = root.chain()); // create a user context.
    // then methods...
    [ 'create', // factory
      'auth',   // login
      'leave',  // logout
      'delete', // account delete
      'recall', // existing auth boostrap
      'alive'   // keep/check auth validity
    ].forEach(function(method){
      user[method] = User[method];
    });
    return user; // return the user!
  };

  // Practical examples about usage found from ./test/common.js

  // This is internal func queries public key(s) for alias.
  function querygunaliases(alias,root){
    return new Promise(function(resolve, reject){
      // load all public keys associated with the username alias we want to log in with.
      root.get('alias/'+alias).get(function(rat, rev){
        rev.off();
        if(!rat.put){
          // if no user, don't do anything.
          var err = 'No user!';
          Gun.log(err);
          return reject(err);
        }
        // then figuring out all possible candidates having matching username
        var aliases = [], c = 0;
        Gun.obj.map(rat.put, function(at, pub){
          if(!pub.slice || 'pub/' !== pub.slice(0,4)){ return }
          c++;
          // grab the account associated with this public key.
          root.get(pub).get(function(at, ev){
            pub = pub.slice(4);
            ev.off(); c--;
            if(at.put){ 
              aliases.push({pub: pub, at: at}); 
            }
            if(!c && (c = -1)){ resolve(aliases) }
          });
        });
        if(!c){ reject('Public key does not exist!') }
      });
    });
  }
  // This is internal User authentication func.
  function authenticate(alias,pass,root){
    return new Promise(function(resolve, reject){
      // load all public keys associated with the username alias we want to log in with.
      querygunaliases(alias, root).then(function(aliases){
        // then attempt to log into each one until we find ours!
        // (if two users have the same username AND the same password... that would be bad)
        aliases.forEach(function(one, index){
          var at = one.at, pub = one.pub;
          var remaining = (aliases.length - index) > 1;
          if(!at.put){
            return !remaining && reject({err: 'Public key does not exist!'});
          }
          // attempt to PBKDF2 extend the password with the salt. (Verifying the signature gives us the plain text salt.)
          var auth = at.put.auth; // SEA.read(at.put.auth, pub).then(function(auth){ // NOTE: aliasquery uses `gun.get` which internally SEA.read verifies the data for us, so we do not need to re-verify it here.
            auth = auth.slice ? JSON.parse(auth) : auth;
            return SEA.proof(pass, auth.salt)
            .catch(function(e){ reject({err: 'Failed to create proof!'}) })
            .then(function(proof){
              var user = {pub: pub, proof: proof, at: at};
              // the proof of work is evidence that we've spent some time/effort trying to log in, this slows brute force.
              SEA.dec(auth.auth, {pub: pub, key: proof})
              .catch(function(e){ reject({err: 'Failed to decrypt secret!'}) })
              .then(function(sea){
                // now we have AES decrypted the private key, from when we encrypted it with the proof at registration.
                // if we were successful, then that meanswe're logged in!
                if(sea){
                  user.priv = sea.priv;
                  user.salt = auth.salt;  // TODO: needed?
                  var epub = at.put.epub; //SEA.read(at.put.epub, pub).then(function(epub){ // NOTE: see above "NOTE"!
                    Object.assign(user, {epub: epub, epriv: sea.epriv});
                    resolve(user);
                  //}).catch(function(){ return !remaining && reject({err: 'Public key does not exist!'}) });
                } else if(!remaining){
                  reject({err: 'Public key does not exist!'});
                }
                // return remaining ? undefined // Not done yet
                // : priv ? resolve({pub: pub, priv: priv, at: at, proof: proof})
                // // Or else we failed to log in...
                // : reject({err: 'Failed to decrypt private key!'});
              }).catch(function(e){ reject({err: 'Failed read secret!'})} );
            });
          //}).catch(function(e){ reject({err: 'Failed to create proof!'}) });
        });
      }).catch(function(e){ reject({err: e}) });
    });
  }
  // This internal func finalizes User authentication
  function finalizelogin(alias,key,root,opts){
    var user = root._.user;
    // add our credentials in-memory only to our root gun instance
    user._ = key.at.gun._;
    // so that way we can use the credentials to encrypt/decrypt data
    user._.is = user.is = {};
    // that is input/output through gun (see below)
    user._.alias = alias;
    user._.sea = {priv: key.priv, epriv: key.epriv};
    user._.pub = key.pub;
    user._.epub = key.epub;
    //console.log("authorized", user._);
    // persist authentication
    return authpersist(user._, key.proof, opts).then(function(){
      // emit an auth event, useful for page redirects and stuff.
      root._.on('auth', user._);
      // returns success with the user data credentials.
      return user._;
    });
  }
  // This updates sessionStorage & IndexedDB to persist authenticated "session"
  function updatestorage(proof,key,pin){
    return function(props){
      return new Promise(function(resolve, reject){
        if(!Gun.obj.has(props, 'alias')){ return resolve() }
        if(authsettings.validity && proof && Gun.obj.has(props, 'iat')){
          props.proof = proof;
          delete props.remember;  // Not stored if present

          var remember = {alias: props.alias, pin: pin};
          var persist = props;

          return SEA.write(JSON.stringify(remember), key).then(function(signed){
            sessionStorage.setItem('user', props.alias);
            sessionStorage.setItem('remember', signed);
          }).then(function(){
            return !persist || SEA.enc(persist, pin).then(function(encrypted){
              return encrypted && SEA.write(encrypted, key).then(function(signed){
                return new Promise(function(resolve){
                  SEA._callonstore_(function(store) { // Wipe IndexedDB completedy!
                    var act = store.clear();
                    act.onsuccess = function(){};
                  }, function(){  // Then set encrypted auth props
                    SEA._callonstore_(function(store){
                      store.put({id: props.alias, auth: signed});
                    }, function(){ resolve() });
                  });
                });
              }).catch(reject);
            }).catch(reject);
          }).then(function(){ resolve(props) })
          .catch(function(e){ reject({err: 'Session persisting failed!'}) });
        }
        // Wiping IndexedDB completely when using random PIN
        return new Promise(function(resolve){
          SEA._callonstore_(function(store) {
            var act = store.clear();
            act.onsuccess = function(){};
          }, function(){ resolve() });
        }).then(function(){
          sessionStorage.removeItem('user');
          sessionStorage.removeItem('remember');
          resolve(props);
        });
      });
    };
  }

  // This internal func persists User authentication if so configured
  function authpersist(user,proof,opts){
    // opts = { pin: 'string' }
    // no opts.pin then uses random PIN
    // How this works:
    // called when app bootstraps, with wanted options
    // IF authsettings.validity === 0 THEN no remember-me, ever
    // IF PIN then signed 'remember' to window.sessionStorage and 'auth' to IndexedDB
    var pin = (Gun.obj.has(opts, 'pin') && opts.pin) || Gun.text.random(10);
    pin = new Buffer(pin, 'utf8').toString('base64');

    if(proof && user && user.alias && authsettings.validity){
      var args = {alias: user.alias};
      args.iat = Math.ceil(Date.now() / 1000);  // seconds
      args.exp = authsettings.validity;         // seconds
      if(Gun.obj.has(opts, 'pin')){
        args.remember = true;                   // for hook - not stored
      }
      var props = authsettings.hook(args);
      var key = {
        pub: user.pub, priv: user.sea.priv, epub: user.epub, epriv: user.sea.epriv
      };
      if(props instanceof Promise){
        return props.then(updatestorage(proof, key, pin));
      }
      return updatestorage(proof, key, pin)(props);
    }
    return updatestorage()({alias: 'delete'});
  }
  // This internal func recalls persisted User authentication if so configured
  function authrecall(root,authprops){
    return new Promise(function(resolve, reject){
      // window.sessionStorage only holds signed { alias, pin } !!!
      var remember = authprops || sessionStorage.getItem('remember');
      var alias = Gun.obj.has(authprops, 'alias') && authprops.alias
      || sessionStorage.getItem('user');
      var pin = Gun.obj.has(authprops, 'pin')
      && new Buffer(authprops.pin, 'utf8').toString('base64');

      var checkRememberData = function(decr){
        if(Gun.obj.has(decr, 'proof')
        && Gun.obj.has(decr, 'alias') && decr.alias === alias){
          var proof = decr.proof;
          var iat = decr.iat; // No way hook to update this
          delete decr.proof;  // We're not gonna give proof to hook!
          var checkNotExpired = function(args){
            if(Math.floor(Date.now() / 1000) < (iat + args.exp)){
              args.iat = iat;
              args.proof = proof;
              return args;
            } else { Gun.log('Authentication expired!') }
          };
          var hooked = authsettings.hook(decr);
          return ((hooked instanceof Promise)
          && hooked.then(checkNotExpired)) || checkNotExpired(hooked);
        }
      };
      var readAndDecrypt = function(data, pub, key){
        return SEA.read(data, pub).then(function(encrypted){
          return SEA.dec(encrypted, key);
        }).then(function(decrypted){
          try{ return decrypted.slice ? JSON.parse(decrypted) : decrypted }catch(e){} //eslint-disable-line no-empty
          return decrypted;
        });
      };

      // Already authenticated?
      if(root._.user && Gun.obj.has(root._.user._, 'pub') && Gun.obj.has(root._.user._, 'sea')){
        return resolve(root._.user._);
      }
      // No, got alias?
      if(alias && remember){
        return querygunaliases(alias, root).then(function(aliases){
          return new Promise(function(resolve, reject){
            // then attempt to log into each one until we find ours!
            // (if two users have the same username AND the same password... that would be bad)
            aliases.forEach(function(one, index){
              var at = one.at, pub = one.pub;
              var remaining = (aliases.length - index) > 1;
              if(!at.put){
                return !remaining && reject({err: 'Public key does not exist!'});
              }
              // got pub, time to try auth with alias & PIN...
              return ((pin && Promise.resolve({pin: pin, alias: alias}))
              // or just unwrap Storage data...
              || SEA.read(remember, pub, true)).then(function(props){
                try{ props = props.slice ? JSON.parse(props) : props }catch(e){}  //eslint-disable-line no-empty
                if(Gun.obj.has(props, 'pin') && Gun.obj.has(props, 'alias')
                && props.alias === alias){
                  pin = props.pin; // Got PIN so get IndexedDB secret if signature is ok
                  return new Promise(function(resolve){
                    var remember;
                    SEA._callonstore_(function(store) {
                      var getData = store.get(alias);
                      getData.onsuccess = function(){
                        remember = getData.result && getData.result.auth;
                      };
                    }, function(){  // And return proof if for matching alias
                      return readAndDecrypt(remember, pub, pin)
                      .then(checkRememberData).then(resolve)
                      .catch(function(){ resolve() });
                    });
                  });
                }
                // No PIN, let's try short-term proof if for matching alias
                return checkRememberData(props);
              }).then(function(args){
                var proof = args && args.proof;
                if(!proof){
                  return (!args && reject({err: 'No valid authentication session found!'}))
                  || updatestorage()(args).then(function(){
                    reject({err: 'Expired session!'});
                  }).catch(function(){
                    reject({err: 'Expired session!'});
                  });
                }
                var auth = JSON.parse(at.put.auth).auth;
                return SEA.dec(auth, proof).catch(function(e){
                  return !remaining && reject({err: 'Failed to decrypt private key!'});
                }).then(function(sea){
                  if(!sea){ return }
                  var epub = at.put.epub; //return SEA.read(at.put.epub, pub).then(function(epub){ // NOTE: queryalias uses `gun.get` which internally verifies data with `SEA.read` so we do not need to do it again.
                    return {pub: pub, priv: sea.priv, epriv: sea.epriv, epub: epub};
                  //});
                }).then(function(key){
                  // now we have AES decrypted the private key,
                  // if we were successful, then that means we're logged in!
                  return updatestorage(proof, key, pin)(args).then(function(){
                    return remaining ? undefined // Not done yet
                    : key ? resolve(Object.assign(key, {at: at, proof: proof}))
                    // Or else we failed to log in...
                    : reject({err: 'Failed to decrypt private key!'});
                  }).catch(function(e){ reject({err: 'Failed to store credentials!'}) });
                }).catch(function(e){ reject({err: 'Failed read secret!'}) });
              }).catch(function(e){ reject({err: 'Failed to access stored credentials!'}) });
            });
          });
        }).then(function(user){
          pin = pin && {pin: pin};
          finalizelogin(alias, user, root, pin).then(resolve).catch(function(e){
            Gun.log('Failed to finalize login with new password!');
            reject({
              err: 'Finalizing new password login failed! Reason: '+(e && e.err) || e || ''
            });
          });
        }).catch(function(e){
          reject({err: 'No authentication session found!'});
        });
      }
      if(!alias){
        return reject({err: 'No authentication session found!'});
      }
      var gotRemember;
      SEA._callonstore_(function(store) {
        var getData = store.get(alias);
        getData.onsuccess = function(){
          gotRemember = getData.result && getData.result.auth;
        };
      }, function(){  // And return proof if for matching alias
        reject({
          err: (gotRemember && authsettings.validity && 'Missing PIN and alias!')
          || 'No authentication session found!'});
      });
    });
  }

  // This internal func executes logout actions
  function authleave(root, alias){
    return function(resolve, reject){
      var user = root._.user || {_:{}};
      root._.user = null;
      alias = alias || user._.alias;
      var doIt = function(){
        // TODO: is this correct way to 'logout' user from Gun.User ?
        [ 'alias', 'sea', 'pub' ].forEach(function(key){
          delete user._[key];
        });
        user._.is = user.is = {};
        // Let's use default
        root.user();
        resolve({ok: 0});
      };
      // Removes persisted authentication & CryptoKeys
      authpersist(alias && {alias: alias}).then(doIt).catch(doIt);
    };
  }
  // This recalls Web Cryptography API CryptoKeys from IndexedDB or creates & stores
  function recallCryptoKey(p,s,o){  // {pub, key}|proof, salt, optional:['sign']
    o = o || ['encrypt', 'decrypt'];  // Default operations
    var importKey = function(key){ return subtle.importKey(
      'raw',
      makeKey((Gun.obj.has(key, 'key') && key.key) || key, s || getRandomBytes(8)),
      'AES-CBC',
      false,
      o
    ); };
    return new Promise(function(resolve){
      if(authsettings.validity && typeof window !== 'undefined'
      && Gun.obj.has(p, 'pub') && Gun.obj.has(p, 'key')){
        var importAndStoreKey = function(){ // Creates new CryptoKey & stores it
          importKey(p).then(function(key){ SEA._callonstore_(function(store){
            store.put({id: p.pub, key: key});
          }, function(){ resolve(key) }); });
        };
        if(Gun.obj.has(p, 'set')){ return importAndStoreKey() } // proof update so overwrite
        var aesKey;
        SEA._callonstore_(function(store) {
          var getData = store.get(p.pub);
          getData.onsuccess = function(){ aesKey = getData.result && getData.result.key };
        }, function(){ return aesKey ? resolve(aesKey) : importAndStoreKey() });
      } else { // No secure store usage
        importKey(p).then(function(aesKey){ resolve(aesKey) });
      }
    });
  }
  // This internal func returns SHA-256 hashed data for signing
  function sha256hash(m){
    var hashSubtle = subtleossl || subtle;
    try{ m = m.slice ? m : JSON.stringify(m) }catch(e){}  //eslint-disable-line no-empty
    return hashSubtle.digest(pbkdf2.hash, new TextEncoder("utf-8").encode(m));
  }
  // This internal func returns SHA-1 hashed data for KeyID generation
  function sha1hash(b){
    var hashSubtle = subtleossl || subtle;
    return hashSubtle.digest('SHA-1', b);
  }

  // How does it work?
  function User(){}
  // Well first we have to actually create a user. That is what this function does.
  User.create = function(alias, pass, cb){
    var root = this.back(-1);
    var doIt = function(resolve, reject){
      // Because more than 1 user might have the same username, we treat the alias as a list of those users.
      root.get('alias/'+alias).get(function(at, ev){
        ev.off();
        if(at.put){
          // If we can enforce that a user name is already taken, it might be nice to try, but this is not guaranteed.
          var err = 'User already created!';
          Gun.log(err);
          return reject({err: err});
        }
        var salt = Gun.text.random(64);
        // pseudo-randomly create a salt, then use CryptoJS's PBKDF2 function to extend the password with it.
        SEA.proof(pass, salt).then(function(proof){
          // this will take some short amount of time to produce a proof, which slows brute force attacks.
          SEA.pair().then(function(pairs){
            // now we have generated a brand new ECDSA key pair for the user account.
            var user = {pub: pairs.pub};
            // the user's public key doesn't need to be signed. But everything else needs to be signed with it!
            SEA.write(alias, pairs).then(function(signedalias){
              user.alias = signedalias;
              return SEA.write(pairs.epub, pairs);
            }).then(function(signedepub){
              user.epub = signedepub;
              // to keep the private key safe, we AES encrypt it with the proof of work!
              return SEA.enc({
                priv: pairs.priv, epriv: pairs.epriv
              }, {pub: pairs.epub, key: proof});
            }).then(function(encryptedprivs){
              return SEA.write(salt, pairs).then(function(signedsalt){
                return SEA.write({salt: salt, auth: encryptedprivs}, pairs);
              });
            }).then(function(encsigauth){
              user.auth = encsigauth;
              var tmp = 'pub/'+pairs.pub;
              //console.log("create", user, pair.pub);
              // awesome, now we can actually save the user with their public key as their ID.
              root.get(tmp).put(user);
              // next up, we want to associate the alias with the public key. So we add it to the alias list.
              root.get('alias/'+alias).put(Gun.obj.put({}, tmp, Gun.val.rel.ify(tmp)));
              // callback that the user has been created. (Note: ok = 0 because we didn't wait for disk to ack)
              setTimeout(function(){ resolve({ok: 0, pub: pairs.pub}) },10); // TODO: BUG! If `.auth` happens synchronously after `create` finishes, auth won't work. This setTimeout is a temporary hack until we can properly fix it.
            }).catch(function(e){ Gun.log('SEA.en or SEA.write calls failed!'); reject(e) });
          }).catch(function(e){ Gun.log('SEA.pair call failed!'); reject(e) });
        });
      });
    };
    if(cb){doIt(cb, cb)} else { return new Promise(doIt) }
  };
  // now that we have created a user, we want to authenticate them!
  User.auth = function(alias,pass,cb,opt){
    var opts = opt || (typeof cb !== 'function' && cb);
    var root = this.back(-1);
    cb = typeof cb === 'function' && cb;

    var doIt = function(resolve, reject){
      if(!pass && Gun.obj.has(opts, 'pin')){
        return authrecall(root, {alias: alias, pin: opts.pin}).then(function(props){
          resolve(props);
        }).catch(function(e){
          reject({err: 'Auth attempt failed! Reason: No session data for alias & PIN'});
        });
      }
      authenticate(alias, pass, root).then(function(keys){
        // we're logged in!
        var pin = Gun.obj.has(opts, 'pin') && {pin: opts.pin};
        if(Gun.obj.has(opts, 'newpass')){
          // password update so encrypt private key using new pwd + salt
          var newsalt = Gun.text.random(64);
          SEA.proof(opts.newpass, newsalt).then(function(newproof){
            return SEA.enc({
              priv: keys.priv, epriv: keys.epriv
            }, {pub: keys.pub, key: newproof, set: true})
            .then(function(encryptedpriv){
              return SEA.write({salt: newsalt, auth: encryptedpriv}, keys);
            });
          }).then(function(encsigauth){
            return SEA.write(keys.epub, keys).then(function(signedepub){
              return SEA.write(alias, keys).then(function(signedalias){
                return {
                  alias: signedalias,
                  auth: encsigauth,
                  epub: signedepub,
                  pub: keys.pub
                };
              });
            });
          }).then(function(user){
            var tmp = 'pub/'+user.pub;
            // awesome, now we can update the user using public key ID.
            // root.get(tmp).put(null);
            root.get(tmp).put(user);
            // then we're done
            finalizelogin(alias, keys, root, pin).then(resolve).catch(function(e){
              Gun.log('Failed to finalize login with new password!');
              reject({
                err: 'Finalizing new password login failed! Reason: '+(e && e.err) || e || ''
              });
            });
          }).catch(function(e){
            Gun.log('Failed encrypt private key using new password!');
            reject({err: 'Password set attempt failed! Reason: ' + (e && e.err) || e || ''});
          });
        } else {
          finalizelogin(alias, keys, root, pin).then(resolve).catch(function(e){
            Gun.log('Failed to finalize login!');
            reject({err: 'Finalizing login failed! Reason: ' + (e && e.err) || e || ''});
          });
        }
      }).catch(function(e){
        Gun.log('Failed to sign in!');
        reject({err: 'Auth attempt failed! Reason: ' + (e && e.err) || e || ''});
      });
    };
    if(cb){doIt(cb, cb)} else { return new Promise(doIt) }
  };
  Gun.chain.trust = function(user){
    // TODO: BUG!!! SEA `node` read listener needs to be async, which means core needs to be async too.
    //gun.get('alice').get('age').trust(bob);
    if(Gun.is(user)){
      user.get('pub').get(function(ctx, ev){
        console.log(ctx, ev);
      });
    }
  };
  User.leave = function(cb){
    var root = this.back(-1);
    if(cb){authleave(root)(cb, cb)} else { return new Promise(authleave(root)) }
  };
  // If authenticated user wants to delete his/her account, let's support it!
  User.delete = function(alias,pass,cb){
    var root = this.back(-1);
    var doIt = function(resolve, reject){
      authenticate(alias, pass, root).then(function(key){
        new Promise(authleave(root, alias)).catch(function(){})
        .then(function(){
          // Delete user data
          root.get('pub/'+key.pub).put(null);
          // Wipe user data from memory
          var user = root._.user || {_: {}};
          // TODO: is this correct way to 'logout' user from Gun.User ?
          [ 'alias', 'sea', 'pub' ].forEach(function(key){
            delete user._[key];
          });
          user._.is = user.is = {};
          root.user();
          resolve({ok: 0});
        }).catch(function(e){
          Gun.log('User.delete failed! Error:', e);
          reject({err: 'Delete attempt failed! Reason: ' + (e && e.err) || e || ''});
        });
      }).catch(function(e){
        Gun.log('User.delete authentication failed! Error:', e);
        reject({err: 'Delete attempt failed! Reason: ' + (e && e.err) || e || ''});
      });
    };
    if(cb){doIt(cb, cb)} else { return new Promise(doIt) }
  };
  // If authentication is to be remembered over reloads or browser closing,
  // set validity time in minutes.
  User.recall = function(v,cb,o){
    var root = this.back(-1);
    var validity, callback, opts;
    if(!o && typeof cb !== 'function' && !Gun.val.is(cb)){
      opts = cb;
    } else {
      callback = cb;
    }
    if(!callback){
      if(typeof v === 'function'){
        callback = v;
        validity = _initial_authsettings.validity;
      } else if(!Gun.val.is(v)){
        opts = v;
        validity = _initial_authsettings.validity;
      } else {
        validity = v * 60;  // minutes to seconds
      }
    }

    var doIt = function(resolve, reject){
      // opts = { hook: function({ iat, exp, alias, proof }),
      //   session: false } // true uses random PIN, no PIN UX error generated
      // iat == Date.now() when issued, exp == seconds to expire from iat
      // How this works:
      // called when app bootstraps, with wanted options
      // IF authsettings.validity === 0 THEN no remember-me, ever
      // IF PIN then signed 'remember' to window.sessionStorage and 'auth' to IndexedDB
      authsettings.validity = typeof validity !== 'undefined' ? validity
      :  _initial_authsettings.validity;
      authsettings.hook = (Gun.obj.has(opts, 'hook') && typeof opts.hook === 'function')
      ? opts.hook : _initial_authsettings.hook;
      // All is good. Should we do something more with actual recalled data?
      authrecall(root).then(resolve).catch(function(e){
        var err = 'No session!';
        Gun.log(err);
        resolve({err: (e && e.err) || err});
      });
    };
    if(callback){doIt(callback, callback)} else { return new Promise(doIt) }
  };
  User.alive = function(cb){
    var root = this.back(-1);
    var doIt = function(resolve, reject){
      authrecall(root).then(function(){
        // All is good. Should we do something more with actual recalled data?
        resolve(root._.user._);
      }).catch(function(e){
        var err = 'No session!';
        Gun.log(err);
        reject({err: err});
      });
    };
    if(cb){doIt(cb, cb)} else { return new Promise(doIt) }
  };

  // After we have a GUN extension to make user registration/login easy, we then need to handle everything else.

  // We do this with a GUN adapter, we first listen to when a gun instance is created (and when its options change)
  Gun.on('opt', function(at){
    if(!at.sea){ // only add SEA once per instance, on the "at" context.
      at.sea = {own: {}};
      at.on('in', security, at); // now listen to all input data, acting as a firewall.
      at.on('out', signature, at); // and output listeners, to encrypt outgoing data.
      at.on('node', each, at);
    }
    this.to.next(at); // make sure to call the "next" middleware adapter.
  });

  // Alright, this next adapter gets run at the per node level in the graph database.
  // This will let us verify that every property on a node has a value signed by a public key we trust.
  // If the signature does not match, the data is just `undefined` so it doesn't get passed on.
  // If it does match, then we transform the in-memory "view" of the data into its plain value (without the signature).
  // Now NOTE! Some data is "system" data, not user data. Example: List of public keys, aliases, etc.
  // This data is self-enforced (the value can only match its ID), but that is handled in the `security` function.
  // From the self-enforced data, we can see all the edges in the graph that belong to a public key.
  // Example: pub/ASDF is the ID of a node with ASDF as its public key, signed alias and salt, and
  // its encrypted private key, but it might also have other signed values on it like `profile = <ID>` edge.
  // Using that directed edge's ID, we can then track (in memory) which IDs belong to which keys.
  // Here is a problem: Multiple public keys can "claim" any node's ID, so this is dangerous!
  // This means we should ONLY trust our "friends" (our key ring) public keys, not any ones.
  // I have not yet added that to SEA yet in this alpha release. That is coming soon, but beware in the meanwhile!
  function each(msg){ // TODO: Warning: Need to switch to `gun.on('node')`! Do not use `Gun.on('node'` in your apps!
    // NOTE: THE SECURITY FUNCTION HAS ALREADY VERIFIED THE DATA!!!
    // WE DO NOT NEED TO RE-VERIFY AGAIN, JUST TRANSFORM IT TO PLAINTEXT.
    var to = this.to, vertex = (msg.gun._).put, c = 0;
    Gun.node.is(msg.put, function(val, key, node){ c++; // for each property on the node
      SEA.read(val, false).then(function(data){ c--; // false just extracts the plain data.
        vertex[key] = node[key] = val = data; // transform to plain value.
        if(!c && (c = -1)){ to.next(msg) }
      });
    });
    if(!c){ to.next(msg) }
    return;
    /*var to = this.to, ctx = this.as;
    var own = ctx.sea.own, soul = msg.get, c = 0;
    var pub = own[soul] || soul.slice(4), vertex = (msg.gun._).put;
    Gun.node.is(msg.put, function(val, key, node){ c++; // for each property on the node.
      SEA.read(val, pub).then(function(data){ c--;
        vertex[key] = node[key] = val = data; // verify signature and get plain value.
        if(val && val['#'] && (key = Gun.val.rel.is(val))){ // if it is a relation / edge
          if('alias/' !== soul.slice(0,6)){ own[key] = pub; } // associate the public key with a node if it is itself
        }
        if(!c && (c = -1)){ to.next(msg) }
      });
    });
    if(!c){ to.next(msg) }*/
  }

  // signature handles data output, it is a proxy to the security function.
  function signature(msg){
    if(msg.user){
      return this.to.next(msg);
    }
    var ctx = this.as;
    msg.user = ctx.user;
    security.call(this, msg);
  }

  // okay! The security function handles all the heavy lifting.
  // It needs to deal read and write of input and output of system data, account/public key data, and regular data.
  // This is broken down into some pretty clear edge cases, let's go over them:
  function security(msg){
    var at = this.as, sea = at.sea, to = this.to;
    if(msg.get){
      // if there is a request to read data from us, then...
      var soul = msg.get['#'];
      if(soul){ // for now, only allow direct IDs to be read.
        if('alias' === soul){ // Allow reading the list of usernames/aliases in the system?
          return to.next(msg); // yes.
        } else
        if('alias/' === soul.slice(0,6)){ // Allow reading the list of public keys associated with an alias?
          return to.next(msg); // yes.
        } else { // Allow reading everything?
          return to.next(msg); // yes // TODO: No! Make this a callback/event that people can filter on.
        }
      }
    }
    if(msg.put){
      // potentially parallel async operations!!!
      var check = {}, on = Gun.on(), each = {}, u;
      each.node = function(node, soul){
        if(Gun.obj.empty(node, '_')){ return check['node'+soul] = 0 } // ignore empty updates, don't reject them.
        Gun.obj.map(node, each.way, {soul: soul, node: node});
      };
      each.way = function(val, key){
        var soul = this.soul, node = this.node, tmp;
        if('_' === key){ return } // ignore meta data
        if('alias' === soul){  // special case for shared system data, the list of aliases.
          each.alias(val, key, node, soul); return;
        }
        if('alias/' === soul.slice(0,6)){ // special case for shared system data, the list of public keys for an alias.
          each.pubs(val, key, node, soul); return;
        }
        if('pub/' === soul.slice(0,4)){ // special case, account data for a public key.
          each.pub(val, key, node, soul, soul.slice(4), msg.user); return;
        }
        return each.end({err: "No other data allowed!"});
        /*if(!(tmp = at.user)){ return }
        if(soul.slice(4) === (tmp = tmp._).pub){ // not a special case, if we are logged in and have outbound data on us.
          each.user(val, key, node, soul, {
            pub: tmp.pub, priv: tmp.sea.priv, epub: tmp.sea.epub, epriv: tmp.sea.epriv
          });
        }
        if((tmp = sea.own[soul])){ // not special case, if we receive an update on an ID associated with a public key, then
          each.own(val, key, node, soul, tmp);
        }*/
      };
      each.alias = function(val, key, node, soul){ // Example: {_:#alias, alias/alice: {#alias/alice}}
        if(!val){ return each.end({err: "Data must exist!"}) } // data MUST exist
        if('alias/'+key === Gun.val.rel.is(val)){ return check['alias'+key] = 0 } // in fact, it must be EXACTLY equal to itself
        each.end({err: "Mismatching alias."}); // if it isn't, reject.
      };
      each.pubs = function(val, key, node, soul){ // Example: {_:#alias/alice, pub/asdf: {#pub/asdf}}
        if(!val){ return each.end({err: "Alias must exist!"}) } // data MUST exist
        if(key === Gun.val.rel.is(val)){ return check['pubs'+soul+key] = 0 } // and the ID must be EXACTLY equal to its property
        each.end({err: "Alias must match!"}); // that way nobody can tamper with the list of public keys.
      };
      each.pub = function(val, key, node, soul, pub, user){ // Example: {_:#pub/asdf, hello:SEA['world',fdsa]}
        if('pub' === key){
          if(val === pub){ return (check['pub'+soul+key] = 0) } // the account MUST match `pub` property that equals the ID of the public key.
          return each.end({err: "Account must match!"});
        }
        check['user'+soul+key] = 1;
        if(user && (user = user._) && user.sea){
          if(pub === user.pub){
            SEA.write(val, Gun.obj.to(user.sea, {pub: user.pub, epub: user.epub}), function(data){
              node[key] = data;
              check['user'+soul+key] = 0;
              each.end({ok: 1});
            });
          } else {
            each.end({err: "Please stop trying to hack/impersonate somebody else!"});
          }
          return;
        }
        SEA.read(val, pub).then(function(data){
          if(u === data){ // make sure the signature matches the account it claims to be on.
            return each.end({err: "Unverified data."}); // reject any updates that are signed with a mismatched account.
          }
          check['user'+soul+key] = 0;
          each.end({ok: 1});
        });
      };
      /*
      each.user = function(val, key, node, soul, tmp){
        check['user'+soul+key] = 1;
        SEA.write(val, tmp, function(data){ // TODO: BUG! Convert to use imported.
          node[key] = data; // be signed by our logged in account.
          check['user'+soul+key] = 0;
          on.to('end', {ok: 1});
        });
      };
      each.own = function(val, key, node, soul, tmp){
        check['own'+soul+key] = 1;
        SEA.read(val, tmp, function(data){
          var u;
          check['own'+soul+key] = 0;
          // TODO: hopefully fixed this right, typeof u === 'undefined' thus
          // if there is signature, and data is undefined, then:
          on.to('end', {no: tmp = (u === (val = data)), err: tmp && "Signature mismatch!"});
        });
      };
      */
      each.end = function(ctx){ // TODO: Can't you just switch this to each.end = cb?
        if(each.err || !each.end.ed){ return }
        if((each.err = ctx.err) || ctx.no){
          console.log('NO!', each.err);
          return;
        }
        if(Gun.obj.map(check, function(no){
          if(no){ return true }
        })){ return }
        to.next(msg);
      };
      Gun.obj.map(msg.put, each.node);
      each.end({end: each.end.ed = true});
      return; // need to manually call next after async.
    }
    to.next(msg); // pass forward any data we do not know how to handle or process (this allows custom security protocols).
  }

  // Does enc/dec key like OpenSSL - works with CryptoJS encryption/decryption
  function makeKey(p,s){
    var ps = Buffer.concat([new Buffer(p, 'utf8'), s]);
    var h128 = new Buffer((new SparkMD5()).appendBinary(ps).end(true), 'binary');
    return Buffer.concat([
      h128,
      new Buffer((new SparkMD5()).appendBinary(Buffer.concat([h128, ps])).end(true), 'binary')
    ]);
  }

  // These SEA functions support both callback AND Promises
  var SEA = {};
  // create a wrapper library around Web Crypto API.
  // now wrap the various AES, ECDSA, PBKDF2 functions we called above.
  SEA.proof = function(pass,salt,cb){
    var doIt = (typeof window !== 'undefined' && function(resolve, reject){
      subtle.importKey(  // For browser subtle works fine
        'raw', new TextEncoder().encode(pass), {name: 'PBKDF2'}, false, ['deriveBits']
      ).then(function(key){
        return subtle.deriveBits({
          name: 'PBKDF2',
          iterations: pbkdf2.iter,
          salt: new TextEncoder().encode(salt),
          hash: pbkdf2.hash,
        }, key, pbkdf2.ks*8);
      }).then(function(result){
        pass = getRandomBytes(pass.length);
        return new Buffer(result, 'binary').toString('base64');
      }).then(resolve).catch(function(e){ Gun.log(e); reject(e) });
    }) || function(resolve, reject){  // For NodeJS crypto.pkdf2 rocks
      try{
        var hash = crypto.pbkdf2Sync(
          pass,
          new Buffer(salt, 'utf8'),
          pbkdf2.iter,
          pbkdf2.ks,
          pbkdf2.hash.replace('-', '').toLowerCase()
        );
        pass = getRandomBytes(pass.length);
        resolve(hash && hash.toString('base64'));
      }catch(e){ reject(e) }
    };
    if(cb){ doIt(cb, function(){cb()}) } else { return new Promise(doIt) }
  };
  // Calculate public key KeyID aka PGPv4 (result: 8 bytes as hex string)
  SEA.keyid = function(p,cb){
    var doIt = function(resolve, reject){
      // base64('base64(x):base64(y)') => Buffer(xy)
      var pb = Buffer.concat((new Buffer(p, 'base64')).toString('utf8').split(':')
      .map(function(t){ return new Buffer(t, 'base64') }));
      // id is PGPv4 compliant raw key
      var id = Buffer.concat([new Buffer([0x99, pb.length/0x100, pb.length%0x100]), pb]);
      sha1hash(id).then(function(sha1){
        var hash = new Buffer(sha1, 'binary');
        resolve(hash.slice(hash.length-8).toString('hex')); // 16-bit ID as hex
      });
    };
    if(cb){ doIt(cb, function(){cb()}) } else { return new Promise(doIt) }
  };
  SEA.pair = function(cb){
    var doIt = function(resolve, reject){
      // First: ECDSA keys for signing/verifying...
      return subtle.generateKey(ecdsakeyprops, true, ['sign', 'verify'])
      .then(function(key){  // privateKey scope doesn't leak out from here!
        var pubkey = key.publicKey;
        return subtle.exportKey('jwk', key.privateKey).then(function(k){
          return {priv: k.d};
        }).then(function(keys){
          return subtle.exportKey('jwk', pubkey).then(function(k){
            keys.pub = (new Buffer([k.x, k.y].join(':'))).toString('base64');
            // return SEA.keyid(keys.pub).then(function(id){
            //   keys.pubId = id;
            //   return keys;
            // });
            return keys;
          });
        }).catch(function(e){ Gun.log(e); reject(e) });
      }).then(function(keys){
        // Next: ECDH keys for encryption/decryption...
        var ecdhSubtle = subtleossl || subtle;
        return ecdhSubtle.generateKey(ecdhkeyprops, true, ['deriveKey'])
        .then(function(key){
          var pubkey = key.publicKey;
          return ecdhSubtle.exportKey('jwk', key.privateKey).then(function(k){
            keys.epriv = k.d;
            return keys;
          }).then(function(keys){
            return ecdhSubtle.exportKey('jwk', pubkey).then(function(k){
              keys.epub = (new Buffer([k.x, k.y].join(':'))).toString('base64');
              return keys;
            });
          }).catch(function(e){ Gun.log(e); reject(e) });
        }).catch(function(e){ Gun.log(e); reject(e) });
      }).then(resolve)
      .catch(function(e){ Gun.log(e); reject(e) });
    };
    if(cb){ doIt(cb, function(){cb()}) } else { return new Promise(doIt) }
  };
  SEA.derive = function(m,p,cb){
    var ecdhSubtle = subtleossl || subtle;
    var keystoecdhjwk = function(pub, priv){
      var pubkey = (new Buffer(pub, 'base64')).toString('utf8').split(':');
      var jwk = priv ? {d: priv, key_ops: ['decrypt']} : {key_ops: ['encrypt']};
      var ret = Object.assign(jwk, {
        kty: 'EC',
        crv: 'P-256',
        x: pubkey[0],
        y: pubkey[1],
        ext: false
      });
      return ret;
    };
    var doIt = function(resolve, reject){
      ecdhSubtle.importKey('jwk', keystoecdhjwk(m), ecdhkeyprops, false, ['deriveKey'])
      .then(function(pub){
        var pubkey = pub;
        ecdhSubtle.importKey(
          'jwk', keystoecdhjwk(p.epub, p.epriv), ecdhkeyprops, false, ['deriveKey']
        ).then(function(privkey){
          var props = Object.assign({}, ecdhkeyprops);
          props.public = pubkey;
          ecdhSubtle.deriveKey(
            props, privkey, {name: 'AES-CBC', length: 256}, true, ['encrypt', 'decrypt']
          ).then(function(derivedkey){
            ecdhSubtle.exportKey('jwk', derivedkey).then(function(key){
              resolve(key.k);
            });
          }).catch(function(e){ Gun.log(e); reject(e) });
        }).catch(function(e){ Gun.log(e); reject(e) });
      }).catch(function(e){ Gun.log(e); reject(e) });
    };
    if(cb){ doIt(cb, function(){cb()}) } else { return new Promise(doIt) }
  };
  SEA.sign = function(m,p,cb){
    var doIt = function(resolve, reject){
      var jwk = keystoecdsajwk(p.pub, p.priv);
      sha256hash(m.slice ? m : JSON.stringify(m)).then(function(mm){
        subtle.importKey('jwk', jwk, ecdsakeyprops, false, ['sign']).then(function(key){
          subtle.sign(ecdsasignprops, key, mm)
          .then(function(s){ resolve(new Buffer(s, 'binary').toString('base64')) })
          .catch(function(e){ Gun.log(e); reject(e) });
        }).catch(function(e){ Gun.log(e); reject(e) });
      });
    };
    if(cb){doIt(cb, function(){cb()})} else { return new Promise(doIt) }
  };
  SEA.verify = function(m, p, s, cb){
    var doIt = function(resolve, reject){
      subtle.importKey('jwk', keystoecdsajwk(p), ecdsakeyprops, false, ['verify'])
      .then(function(key){
        sha256hash(m).then(function(mm){
          subtle.verify(ecdsasignprops, key, new Buffer(s, 'base64'), mm)
          .then(function(v){ resolve(v) })
          .catch(function(e){ Gun.log(e); reject(e) });
        });
      }).catch(function(e){ Gun.log(e); reject(e) });
    };
    if(cb){doIt(cb, function(){cb()})} else { return new Promise(doIt) }
  };
  SEA.enc = function(m,p,cb){
    var doIt = function(resolve, reject){
      var s = getRandomBytes(8);
      var iv = getRandomBytes(16);
      var r = {iv: iv.toString('hex'), s: s.toString('hex')};
      m = (m.slice && m) || JSON.stringify(m);
      recallCryptoKey(p, s).then(function(aesKey){
        subtle.encrypt({
          name: 'AES-CBC', iv: iv
        }, aesKey, new TextEncoder().encode(m)).then(function(ct){
          aesKey = getRandomBytes(32);
          r.ct = new Buffer(ct, 'binary').toString('base64');
          return JSON.stringify(r);
        }).then(resolve).catch(function(e){ Gun.log(e); reject(e) });
      }).catch(function(e){ Gun.log(e); reject(e)} );
    };
    if(cb){ doIt(cb, function(){cb()}) } else { return new Promise(doIt) }
  };
  SEA.dec = function(m,p,cb){
    var doIt = function(resolve, reject){
      try{ m = m.slice ? JSON.parse(m) : m }catch(e){}  //eslint-disable-line no-empty
      var iv = new Buffer(m.iv, 'hex');
      var s = new Buffer(m.s, 'hex');
      recallCryptoKey(p, s).then(function(aesKey){
        subtle.decrypt({
          name: 'AES-CBC', iv: iv
        }, aesKey, new Buffer(m.ct, 'base64')).then(function(ct){
          aesKey = getRandomBytes(32);
          var ctUtf8 = new TextDecoder('utf8').decode(ct);
          try{ return ctUtf8.slice ? JSON.parse(ctUtf8) : ctUtf8;
          }catch(e){ return ctUtf8 }
        }).then(resolve).catch(function(e){Gun.log(e); reject(e)});
      }).catch(function(e){Gun.log(e); reject(e)});
    };
    if(cb){ doIt(cb, function(){cb()}) } else { return new Promise(doIt) }
  };
  SEA.write = function(mm,p,cb){
    var doIt = function(resolve, reject) {
      // TODO: something's bugging double 'SEA[]' treatment to mm...
      var m = mm;
      if(m && m.slice && 'SEA[' === m.slice(0,4)){ return resolve(m) }
      if(mm && mm.slice){
        // Needs to remove previous signature envelope
        while('SEA[' === m.slice(0,4)){
          try{ m = JSON.parse(m.slice(3))[0];
          }catch(e){ break }
        }
      }
      m = (m && m.slice) ? m : JSON.stringify(m);
      SEA.sign(m, p).then(function(signature){
        resolve('SEA'+JSON.stringify([m,signature]));
      }).catch(function(e){Gun.log(e); reject(e)});
    };
    if(cb){ doIt(cb, function(){cb()}) } else { return new Promise(doIt) }
  };
  SEA.read = function(m,p,cb){
    var doIt = function(resolve, reject) {
      if(!m){ if(false === p){ return resolve(m) }
        return resolve();
      }
      if(!m.slice || 'SEA[' !== m.slice(0,4)){ 
        if(false === p){ return resolve(m) }
        return resolve()
      }
      m = m.slice(3);
      try{ m = m.slice ? JSON.parse(m) : m;
      }catch(e){ return reject(e) }
      m = m || '';
      if(false === p){ resolve(m[0]) }
      SEA.verify(m[0], p, m[1]).then(function(ok){
        resolve(ok && m[0]);
      }).catch(function(e){reject(e)});
    };
    if(cb && typeof cb === 'function'){
      doIt(cb, function(){cb()});
    } else { return new Promise(doIt) }
  };
  // Internal helper for IndexedDB use
  SEA._callonstore_ = function(fn_, resolve_){
    var open = indexedDB.open('GunDB', 1);  // Open (or create) the database; 1 === 'version'
    open.onupgradeneeded = function(){  // Create the schema; props === current version
      var db = open.result;
      db.createObjectStore('SEA', {keyPath: 'id'});
    };
    open.onsuccess = function(){  // Start a new transaction
      var db = open.result;
      var tx = db.transaction('SEA', 'readwrite');
      var store = tx.objectStore('SEA');
      fn_(store);
      tx.oncomplete = function(){   // Close the db when the transaction is done
        db.close();
        if(typeof resolve_ === 'function'){ resolve_() }
      };
    };
  };

  Gun.SEA = SEA;

  // all done!
  // Obviously it is missing MANY necessary features. This is only an alpha release.
  // Please experiment with it, audit what I've done so far, and complain about what needs to be added.
  // SEA should be a full suite that is easy and seamless to use.
  // Again, scroll naer the top, where I provide an EXAMPLE of how to create a user and sign in.
  // Once logged in, the rest of the code you just read handled automatically signing/validating data.
  // But all other behavior needs to be equally easy, like opinionated ways of
  // Adding friends (trusted public keys), sending private messages, etc.
  // Cheers! Tell me what you think.

  try{module.exports = SEA}catch(e){} //eslint-disable-line no-empty
}());